Copyright © 2024 by Nam Nguyen. All rights reserved.

ZERO-TO-ONE

CISCO CATALYST
SD-WAN
Software-De ned
Wide Area Network
Part 1

BY NAM NGUYEN
Page 1 www.itbase.tv

fi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

ZERO-TO-ONE

CISCO CATALYST
SD-WAN
BY NAM NGUYEN

Page 2 www.itbase.tv

 Copyright © 2024 by Nam Nguyen. All rights reserved.

COPYRIGHT
© Nam Nguyen, 2024

Copyright © 2024 by Nam Nguyen. All rights reserved.

No part of this publication may be reproduced, stored in a retrieval system, or transmitted

in any form or by any means, electronic, mechanical, photocopying, recording, scanning,
or otherwise, without the prior written permission of the publisher, except as permitted by
copyright law.

For permissions requests, please contact the publisher at info@itbase.tv or

ngdd.nam@gmail.com.

All copyright holders of images included in this publication have been contacted, and
permissions have been granted for their use.

Published by Nguyen Duc Duong Nam

© Nam Nguyen, 2024

Ho Chi Minh City, Viet Nam
Website: www.nam-nguyen.me
Email: ngdd.nam@gmail.com
info@itbase.tv

Page 3 www.itbase.tv

 Copyright © 2024 by Nam Nguyen. All rights reserved.

ABOUT AUTHOR
Greetings! I'm Nam Nguyen, a passionate Network Engineer based in Vietnam. With
years of hands-on experience in managing Wide-Area Networks and Enterprise
Networks, I've honed my skills to navigate the complexities of networking infrastructure.

Driven by an insatiable thirst for knowledge and a commitment to continual growth, I've
expanded my expertise into Network Automation (DevNet) and Cloud Networking. I rmly
believe that staying at the forefront of technology is essential in today's fast-paced world.

In my journey of lifelong learning, I've established Tech-HubLearner, a platform dedicated

to sharing insights, tutorials, and articles with the community. My mission is simple: to
make complex concepts understandable for everyone. (www.itbase.tv)

Through "Cisco Catalyst SD-WAN - Zero to One (Part 1)," I aim to empower readers with
the knowledge they need to master Software-De ned Wide Area Networking (SD-WAN)
using Cisco Catalyst solutions. With a focus on clarity and simplicity, I invite you to join me
on this educational journey and unlock the potential of modern networking technologies
together

Page 4 www.itbase.tv

fi
fi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

PREFACE
Welcome to "Cisco Catalyst SD-WAN - Zero to One (Part 1)." This book is your gateway to
the world of Software-De ned Wide Area Networking (SD-WAN), tailored speci cally for
Cisco Catalyst solutions.

Whether you're an IT enthusiast, a seasoned network engineer, or simply curious about

the latest in networking technology, this guide is designed to equip you with the essential
knowledge and practical skills needed to navigate the landscape of SD-WAN.

In today's fast-paced digital era, organizations are increasingly seeking agility, scalability,
and e ciency in their networks. Traditional approaches are falling short, driving the
adoption of SD-WAN as a game-changer in networking.

At the heart of this revolution is Cisco Catalyst SD-WAN, blending software-de ned
intelligence with Cisco's trusted Catalyst platform to deliver enhanced performance,
simpli ed management, and unprecedented exibility.

This book serves as your roadmap from "Zero to One" in Cisco Catalyst SD-WAN.
Whether you're aiming to deepen your understanding, prepare for certi cations, or
deploy solutions in your organization, this guide will be your companion throughout the
journey.

So, let's embark on this adventure together and unlock the potential of Cisco Catalyst
SD-WAN.

Page 5 www.itbase.tv
ffi

fi
fi
fl
fi
fi
fi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

1
WHAT - WHY
SD-WAN

Page 6 www.itbase.tv

 Copyright © 2024 by Nam Nguyen. All rights reserved.

CHAPTER 1. WHAT AND WHY SD-WAN

1-1. INTRODUCTION
In this book, we embark on a journey to unravel the profound transformation that SDN
(Software-De ned Network) brings to modern networks, with a speci c focus on SD-
WAN.

Figure 1-1. Cisco SDN Solutions

Think of SDN like a special plan that makes networks more exible and easier to
manage. It's like giving the network a smart brain that can control things better. This
smart brain separates the control part of the network from the part that sends data. It's
like having a manager who makes decisions and tells others what to do.

Cisco Catalyst SD-WAN is a part of Cisco SDN solution which applies the modern solution
to WAN (Wide Area Network) side. It's like having a GPS (Global Positioning System) for
your network tra c. It helps data nd the best and fastest path to travel through the
network. This means your apps and websites work really well, and you have a smooth
experience. We'll dive into how SD-WAN does this by making smart decisions about how
data moves around.

Page 7 www.itbase.tv

fi
ffi
fi
fl
fi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

So, join me in discovering how SD-WAN is changing the game for networks. We'll learn
how these technologies make networks more exible, easier to control, and super
e cient for all the things we do online with Cisco Catalyst SD-WAN.

1-2. LEGACY WAN CHALLENGES

In today's digital era, where organizations rely heavily on cloud-based applications,
remote branches, and distributed workforces, the demand for reliable and e cient
network connectivity has skyrocketed. Traditional Wide Area Networking (WAN)
architectures, while once e ective, are struggling to keep up with the evolving needs of
businesses. Enter Software-De ned Wide Area Networking (SD-WAN), a revolutionary
technology that addresses the limitations of traditional WAN and unlocks a new realm of
possibilities for network management.

In this chapter, we'll explore why SD-WAN has become the go-to solution for modern
networking and how it resolves the congestion and related issues faced by traditional
WAN, using the example of MPLS tra c routing through the Hub site for internet access.
Traditional WAN architectures, often built on Multi-protocol Label Switching (MPLS), were
designed for a di erent era where most applications and resources were housed in
centralized data centers.

However, with the shift to cloud computing and the increasing reliance on internet
connectivity, traditional WAN architectures face several challenges. One such challenge
is the congestion and related issues caused by routing MPLS tra c through the Hub site
for internet access.

EXAMPLE 1: CONGESTION, PERFORMANCES CHALLENGES

Figure 1-2 shows the example topology as MPLS Tra c Routing Through the Hub Site. In
a traditional WAN setup, branches typically rely on MPLS connections to access both
corporate resources and the internet.
This approach involves routing all tra c, including internet-bound tra c, through the Hub
site before reaching the internet gateway. This centralized tra c ow can lead to
congestion and performance issues.

When internet-bound tra c from multiple branches is funneled through the Hub site, it
creates a bottleneck that a ects the overall network performance. The Hub site becomes
a single point of failure, and any network issues or congestion at the Hub site can impact
the performance of all connected branches.

Page 8 www.itbase.tv
ffi

ff
ffi
ff
ff
fi
ffi
ffi
fl
ffi
ffi
ffi
fl
ffi
ffi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

Figure 1-2. Legacy WAN challenges example 1

Additionally, the Hub site's internet bandwidth may not be su cient to handle the
aggregated tra c, leading to latency and poor user experience for branch users
accessing cloud-based applications or web services.

EXAMPLE 2: NETWORK MANAGEMENT CHALLENGES

The challenge of Legacy WAN that is the growing number of WAN Edge devices.

In traditional WAN architectures, the number of WAN edge devices increases as the
organization expands its network and adds more branch locations. Each branch typically
requires a router or other networking equipment to connect to the WAN. With traditional
WAN, managing a growing number of WAN edge devices poses several challenges:

Manual Con guration and Management: Traditional WANs often rely on manual
con guration and management of individual devices. As the number of devices
increases, it becomes increasingly time-consuming and prone to human errors.
Managing con gurations, rmware updates, and troubleshooting across numerous
devices becomes a daunting task.

Page 9 www.itbase.tv
fi

fi
fi
ffi
fi
ffi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

Additionally, there are lot of WAN transport options out there (T1/E1, MPLS, 5G, INTERNET,
etc.), each type of transport requires the speci c con guration which make the
complexity of con guration maintenance, updating or establishment.
Lack of Centralized Control: Traditional WAN architectures lack centralized control and
visibility, making it di cult to enforce consistent policies and ensure network-wide
security. Network administrators must individually con gure and monitor each device,
leading to inconsistency and potential security vulnerabilities.

Limited Scalability: As the number of WAN edge devices grows, scalability becomes a
concern. Traditional WAN architectures may struggle to handle the increased tra c and
demand, resulting in performance issues and slower network speeds. Adding new
devices or scaling the network becomes cumbersome and time-intensive.

Figure 1-3. Traditional WAN's management challenges

Page 10 www.itbase.tv

fi
ffi
fi
fi
fi
ffi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

1-3. SD-WAN COMES TO IMPROVE

SD-WAN RESOLVING CONGESTION WITH DIRECT INTERNET ACCESS AND APPLICATION AWARENESS
ROUTING

SD-WAN addresses the congestion and related issues of traditional WAN by introducing
a concept known as Direct Internet Access (DIA). With SD-WAN, branches can access the
internet directly, bypassing the need to route all tra c through a central Hub site. This
distributed architecture improves performance and reduces latency by providing branch
users with localized internet access.
By leveraging DIA, SD-WAN allows branch tra c to be intelligently routed based on
application requirements and network conditions. Internet-bound tra c can be securely
directed to the nearest internet breakout point, such as a local internet service provider
(ISP) or a cloud-based security service, optimizing the network path and reducing latency.
This approach also o oads the Hub site from unnecessary tra c, enabling it to focus on
mission-critical functions.

Figure 1-4. SD-WAN provide secure cloud access using local Internet

Page 11 www.itbase.tv

ffl
ffi
ffi
ffi
ffi
 Copyright © 2024 by Nam Nguyen. All rights reserved.

Application Awareness Routing policy is centralized con gured via controllers, which
provide the smart tra c driven based on customer needs. For example, Internet tra c
like SaaS will go through local internet circuits, vice versa, the sensitive tra c like access
Company database in Private Cloud will go through Hub site.

CONTINUED TO READ ...

Page 12 www.itbase.tv

ffi
fi
ffi
ffi